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IN THE UNITED STATES DESIGNATED/ELECTED OFFICE (D.O./E.O./US) 

Applicant: Louis GOUBIN 

International 

Application No.: PCT/FR00/02978 
International 

Filing Date: 26 October 2000 

U.S. Serial No.: To be Assigned 
U.S. Filing Date: June 28, 2001 

For: SECURITY METHOD FOR A CRYPTOGRAPHIC 

ELECTRONIC ASSEMBLY BASED ON MODULAR 
EXPONENTIATION AGAINST ANALYTICAL ATTACKS 

McLean, Virginia 

PRELIMINARY AMENDMENT 

Honorable Commissioner of Patents 

and Trademarks 
Washington, D.C. 20231 

Sir: 

Please amend the subject application, filed concurrently herewith, as 
indicated below: 
IN THE TITLE: 

Please cancel the title in its entirety and substitute the following new title: 

- METHOD FOR PROTECTING AN ELECTRONIC SYSTEM WITH MODULAR 
EXPONENTIATION-BASED CRYPTOGRAPHY AGAINST ATTACKS 
BY PHYSICAL ANALYSIS - 

IN THE SPECIFICATION : 

After the title and before the first paragraph on page 1 at line 5, insert the 
following heading at the left-hand margin: 

TYSO01 :91 49572VOI000001 -#BRCH7I06\25\01 -1 



T2146-907343-US 3857/BC(PCT) 

- FIELD OF THE INVENTION -: 

Page 1 , at line 13, insert the following heading at the left-hand margin: 
- BACKGROUND OF THE INVENTION - ; 

Page 7, at line 13, insert the following heading and sentence: 
- BRIEF DESCRIPTION OF THE DRAWING 

Fig. 1 is a representation of a smart card. — 

Page 7, delete the two paragraphs beginning at line 15 and ending at line 
33 in their entirety and insert the following new paragraphs. (Paragraphs 
showing the changes using underlining and bracketing are included as an 
attachment at the end of this Preliminary Amendment). 
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—The invention can be implemented in any electronic system performing 
a cryptographic calculation involving a modular exponentiation, including a smart 
card 8 as shown in Fig. 1 . The chip includes information processing means 9, 
connected on one end to a nonvolatile memory 10 and a volatile working 
memory RAM 1 1 , and connected on another end to means 1 2 for cooperating 
with an information processing device. The nonvolatile memory 10 can comprise 
a non-modifiable ROM part and a modifiable part constituted by an EPROM, an 
EEPROM or a RAM of the "flash" type, or FRAM, (the latter being a 
ferromagnetic RAM)), i.e., having the characteristics of an EEPROM but with 
access times identical to those of a standard RAM. 

For the chip, it is possible to use, in particular, a self-programmable 
microprocessor with a nonvolatile memory, as described in U.S. patent No. 
4,382,279 assigned to the assignee of the present invention. In a variant, the 
microprocessor of the chip is replaced, or at least supplemented, by logical 
circuits installed in a semiconductor chip. In essence, such circuits are capable 
of performing calculations, including authentication and signature calculations, as 
a result of hard-wired, rather than microprogrammed, electronics. In particular, 
they can be of the ASIC ("Application Specific Integrated Circuit") type. 
Advantageously, the chip is designed in monolithic form.- 
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Page 8, after line 22, insert the following new paragraph: 
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--While this invention has been described in conjunction with specific 
embodiments thereof, it is evident that many alternatives, modifications and 
variations will be apparent to those skilled in the art. Accordingly, the preferred 
embodiments of the invention as set forth herein, are intended to be illustrative, 
not limiting. Various changes may be made without departing from the true spirit 
and full scope of the invention as set forth herein and defined in the claims. — 
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IN THE CLAIMS : 

Please amend claims 1 - 7, and add new claims 8-1 1 . The claims that 
follow are a complete set of "clean" claims. The original claims 1-7 marked up 
to show the changes with underlining and bracketing are included as an 
attachment to this Preliminary Amendment: 
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1 1 . (Amended) A method for protecting an electronic system 

2 implementing a cryptographic process involving calculation of a modular 

3 exponentiation of a quantity (x), said modular exponentiation using a secret 

4 exponent (d), comprising breaking down said secret exponent (d) into a plurality 

5 of k unpredictable values (of ? , d 2 , d k ), the sum of which is equal to said secret 

6 exponent. 

1 2. (Amended) A method according to claim 1 , characterized in that 

2 said unpredictable values {d h d 2 , d k ), are obtained by: 

3 a) deriving (k-1) values by means of a random generator; and 

4 b) taking the difference between the secret exponent and the (k-1) 

5 values to derive a final value. 

1 3. (Amended) A method according to claim 1 , wherein calculation of 

2 the modular exponentiation is performed by: 

3 a) raising the quantity (x) by an exponent comprising said value to 

4 obtain a set of results for each of said k values and 

5 b) calculating a product of the results obtained in step a). 

1 4. (Amended) A method according to claim 1 , wherein at least one of 

2 said (k-1) values is obtained by means of a random generator and has a length 

TYSO01 .9149572vOI000001-#BRCH7l06\25\01 7 
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3 at least equal to 64 bits. 

1 5. (Amended) Utilizing the method according to claim 1 in a smart 

2 card comprising information processing means. 

1 6. (Amended) Utilizing the method according to claim 1 for protecting 

2 a cryptographic calculation process using the RSA algorithm. 

1 7. (Amended) Utilizing the method according to claim 1 for protecting 

2 a cryptographic calculation process using the Rabin algorithm. 
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1 -8. (New claim) A method for protecting an electronic system 

2 implementing a cryptographic process involving calculation of a modular 

3 exponentiation of a quantity (x), said modular exponentiation using a secret 

4 exponent (d), comprising breaking down said secret exponent (d) into a plurality 

5 of k unpredictable values (d 1; d 2 , d k ), the sum of which is equal to said secret 

6 exponent; obtaining said unpredictable values (d h d 2 , d k ) by deriving (k-1) 

7 values by means of a random generator; by raising the quantity (x) by an 

8 exponent comprising a final value and obtaining a set of results for each of said k 

9 values and calculating a product of the set of results and taking the difference 
10 between the secret exponent and the (k-1) values to derive the final value. 

1 9. (New Claim) A method according to claim 8, wherein at least one of 

2 said (k-1) values is obtained by means of a random generator and has a length 

3 at least equal to 64 bits. 

1 1 0. (New Claim) A smart card adapted to protect an electronic system 

2 comprising means for implementing a cryptographic process involving calculation 

3 of a modular exponentiation of a quantity (x), said modular exponentiation using 

4 a secret exponent {d), comprising breaking down said secret exponent (d) into a 

5 plurality of k unpredictable values (d h d 2 , d k ), the sum of which is equal to 

6 said secret exponent, means for obtaining said unpredictable values (c/ ? , d 2 , 

7 d k ) by a random generator for deriving (k-1) values and means for taking the 
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8 difference between the secret exponent and the (k-1) values to derive a final 

9 value. 

1 11. (New Claim) A smart card according to claim 1 0, wherein calculation 

2 of the modular exponentiation is performed by: 

3 a) raising the quantity (x) by an exponent comprising said value to 

4 obtain a set of results for each of said k values and 

5 b) calculating a product of the results obtained. -- 
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IN THE ABSTRACT: 

Please delete the Abstract at page 1 1 in its entirety and substitute the 
following new Abstract. 
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-ABSTRACT 

The invention concerns a method for protecting an electronic system 
implementing a cryptographic calculation process involving a modular 
exponentiation of a quantity (x), said modular exponentiation using a secret 
exponent {d), characterized in that said secret exponent is broken down into a 
plurality of k unpredictable values d 2 , d k ), the sum of which is equal to 
said secret exponent. ~ 
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REMARKS 



This Preliminary Amendment is filed to insert headings to conform the 
application to U.S. practice and to correct informalities in the specification, claims 
and abstract resulting from a literal translation of the French text. 
Early action on the merits is earnestly solicited. 

Respectfully submitted, 
MILES & STOCKBRIDGE P.C. 



Date: June 28. 2001 




Edward J. K^fidracki 
Registration No. 20,604 



1751 Pinnacle Drive - Suite 500 
McLean, VA 221 02-3833 
Tel.: 703/903-9000 
Fax: 703/610-8686 
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The following are the two paragraphs on page 7 beginning at line 15 and 
ending at line 33 showing the changes made using underlining and 
bracketing: 

The invention can be implemented in any electronic system performing a 
cryptographic calculation involving a modular exponentiation, including a smart 
card 8 as [in the sole figure] shown in Fig. 1 . The chip includes information 
processing means 9, connected on one end to a nonvolatile memory 10 and a 
volatile working memory RAM 11, and connected on another end to means 12 
for cooperating with an information processing device. The nonvolatile memory 
1 0 can comprise a non-modifiable ROM part and a modifiable part constituted by 
an EPROM, an EEPROM or a RAM of the "flash" type, or FRAM, (the latter 
being a ferromagnetic RAM)), i.e., having the characteristics of an EEPROM but 
with access times identical to those of a standard RAM. 

For the chip, it is possible to use, in particular, a self-programmable 
microprocessor with a nonvolatile memory, as described in U.S. patent No. 
4,382,279 [in the name of the Applicant] assigned to the assignee of the present 
invention . In a variant, the microprocessor of the chip is replaced, or at least 
supplemented, by logical circuits installed in a semiconductor chip. In essence, 
such circuits are capable of performing calculations, including authentication and 
signature calculations, as a result of hard-wired, rather than microprogrammed, 
electronics. In particular, they can be of the ASIC ("Application Specific 
Integrated Circuit") type. Advantageously, the chip is designed in monolithic 
form. 
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The following are the amended claims marked up to show the 
changes with underlining and bracketing: 

1 1 . (Amended) [Method] A method for protecting an electronic system 

2 implementing a cryptographic [calculation] process involving calculation of a 

3 modular exponentiation of a quantity (x), said modular exponentiation using a 

4 secret exponent (d), [characterized in that] comprising breaking down said secret 

5 exponent [is broken down] (aQ. [in to] into a plurality of k unpredictable values (d h 

6 d 2 , d k ), the sum of which is equal to said secret exponent. 

1 2. (Amended) [Method] A method according to claim 1 , characterized 

2 in that said unpredictable values {d h d 2 , d k ), are obtained [in the following 

3 way] by: 

4 a) deriving (k-1) values [are obtained] by means of a random 

5 generator; and 

6 b) taking [the final value is obtained from] the difference between the 

7 secret exponent and the (k-1) values to derive a final value . 

1 3. (Amended) [Method] A method according to claim 1 , 

2 [characterized in that the] wherein calculation of the modular exponentiation is 

3 performed [in the following way] by: 

4 a) [for each of said k values,] raising the quantity (x) [is raised] by an 

5 exponent comprising said value [in order] to obtain [a result,] a set of results 

6 [thus being obtained] for each of said /(values : and 
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7 
8 



b) 

calculated]. 



T2146-907343-US 3857/BC(PCT) 
calculating a product of the results obtained in step a) [is 



1 4. (Amended) [Method] A method according to claim 1 , 

2 [characterized in that] wherein at least one of said (k- 1) values js obtained by 

3 means of a random generator and has a length [greater than or] at least equal to 

4 64 bits. 

1 5. (Amended) [Utilization of] Utilizing the method according to claim 1 

2 in a smart card comprising information processing means. 

1 6. (Amended) [Utilization of] Utilizing the method according to claim 1 

2 [to protect] for protecting a cryptographic calculation process using the RSA 

3 algorithm. 

1 7. (Amended) [Utilization of] Utilizing the method according to claim 1 

2 [to protect] for protecting a cryptographic calculation process using the Rabin 

3 algorithm. 
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SECURITY METHOD FOR A CRYPTOGRAPHIC ELECTRONIC 
ASSEMBLY BASED ON MODULAR EXPONENTIATION AGAINST 
ANALYTICAL ATTACKS 

The present invention relates to a method for protecting an electronic system 
implementing an algorithm involving a modular exponentiation, in which the 
exponent is secret. More precisely, the purpose of the method is to create a version of 
such an algorithm that is not vulnerable to a certain type of physical attack - called 
Differential Power Analysis or High-Order Differential Power Analysis, (abbreviated 
DPA or HO-DPA) - which tries to obtain information on the secret key from a study 
of the electric power consumption of the electronic system during the execution of the 
calculation. 

The cryptographic algorithms considered herein use a secret key to calculate a 
piece of output information based on a piece of input information; this can involve an 
encryption, decryption, signature, signature verification, authentication, non- 
repudiation or key-exchange operation. They are constructed in such a way that a 
hacker, knowing the inputs and the outputs, cannot in practice deduce any information 
on the secret key itself. 

We are therefore interested in a class larger than that traditionally designated 
by the expression secret key algorithms or symmetrical algorithms. In particular, 
everything described in the present patent application also applies to so-called public 
key or asymmetrical algorithms, which actually include two keys: one public, the 
other private and not divulged, the latter being the one targeted by the attacks 
described below. 

Attacks of the Power Analysis type, developed by Paul Kocher and 
Cryptographic Research (see the document Introduction to Differential Power 
Analysis and Related Attacks by Paul Kocher, Joshua Jaffe, and Benjamin Jun, 
Cryptography Research, 870 Market St., Suite 1008, San Francisco, CA 94102; 
HTML edition of the document available at the URL address: 
http://www.cryptography.com/dpa/technical/index.html) start with the observation 
that in reality the hacker can acquire information other than simply the input and 
output data during the execution of the calculation, such as for example the power 



consumption of the microcontroller or the electromagnetic radiation emitted by the 
circuit. 

Differential power analysis is an attack that makes it possible to obtain 
information on the secret key contained in the electronic system, by performing a 
5 statistical analysis of the power consumption records, performed on a large number of 
calculations with this same key. 

This attack does not require any knowledge of the individual power 
consumption of each instruction, or on the temporal position of each of these 
instructions. It applies in the same way assuming that the hacker knows some of the 
10 outputs of the algorithm and the corresponding consumption curves. It is based solely 
on the fundamental hypothesis according to which: 

Fundamental hypothesis : There is an intermediate variable appearing during 
the calculation of the algorithm, such that the knowledge of a few key bits, in practice 
less than 32 bits, makes it possible to decide whether or not two inputs, respectively 
15 two outputs, give the same value for this variable. 

The so-called high-order power analysis attacks are a generalization of the 
DPA attack described above. They can use several different sources of information: 
in addition to the consumption, they can use measurements of electromagnetic 
radiation, temperature, etc., performing statistical operations that are more 
20 sophisticated than the simple notion of a^ti average, and intermediate variables that are 
less elementary than a simple bit or a simple byte. Nevertheless, they are based on 
exactly the same fundamental hypothesis as DPA. 

The object of the method that is the subject of the present invention is to 
eliminate the risk of DPA or HO-DPA attacks on electronic systems with secret or 
25 private key cryptography involving modular exponentiation in which the exponent is 
secret. 

Another object of the present invention is consequently to modify the 
cryptographic calculation process implemented by protected electronic cryptographic 
systems, in such a way that the aforementioned fundamental hypothesis is not longer 
30 verified, i.e. that there is no intermediate variable that depends on the consumption of 
a sub-system easily accessible by the secret or private key, attacks of the DPA or HO- 
DPA thus being rendered ineffective. 
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First example: the RSA algorithm 

RSA is the most famous of the asymmetrical cryptographic algorithms. It was 
developed by Rivest, Shamir and Adleman in 1978. For a more detailed description of 
5 this algorithm, it may be useful to refer to the following document: 

R.L. Rivest, A. Shamir, L.M. Adleman, A Method for Obtaining Digital 
Signatures and Public-Key Cryptosy stems, Communications of the ACM, 21, No. 2, 
1978, pp. 120-126, 
or to the following documents: 
10 • ISO/TEC 9594-8/ITU-T X.509, Information Technology - Open systems 
Interconnection - The Directory: Authentication Framework; 

• ANSI X9.3 1 . 1 , American National Standard, Public-Key Cryptography Using 

Reversible Algorithms for the Financial Services Industry, 1993; 

PKCS #1, RSA Encryption Standard, version 2, 1998, available at the 
15 following address: ftp://ftp.rsa.com/pub/pkcs/doc/pkcs-lv2.doc. 

The RSA algorithm uses a whole number n that is the product of two large 

prime numbers p and q, and a whole number e, prime with ppcm(p-l, q-I), and such 

that e • ±1 mod ppcmp-1, q-I). The whole numbers n and e constitute the public key. 

The public key calculation uses the function g of Z/nz in Z/nZ defined by g(x)=x e mod 
20 n. The secret key calculation uses the function g' 1 (y)=y d mod n, where d is the secret 

exponent (also called the secret or private key) defined by ed • 1 mod ppcm(p-I, q- 

D- 

Attacks of the DP A or HO-DPA type can pose a threat to the standard 
implementations of the RSA algorithm. In essence, the latter very often use the so 
25 called square and multiply principle to perform the calculation of x d mod n. 

This principle consists of writing the breakdown 
d = b m .r2 m -' + b m . 2 -2 m - 2 + ... + bj-2 1 + b 0 -2° 

of the secret exponent d in base 2, the performing the calculation in the following 
way: 

30 1. z» I; 

for i running from m-1 to 0 perform: 

2. z • z 2 mod re; 

3. ifb, = lthenz* zxxmodn. 

3 



In this calculation, it is clear that among the successive values assumed by the 
variable z, the prime numbers depend on only a few bits of the secret key d. The 
fundamental hypothesis that makes the DPA attack possible is therefore fulfilled. It is 
thus possible to guess, for example, the 10 high-order bits of d by concentrating on 
5 the consumption measurements in the part of the algorithm that corresponds to i 

running from m-1 to m-10, which makes it possible to find the next ten bits of d, and 
so on. Eventually, all the bits of the secret exponent d are found. 

A first protection method, and its disadvantages 

10 

A conventional method (proposed by Ronald Rivest in 1995) for protecting 
the RSA algorithm against DPA type attacks consists of using a "blinding" principle. 
This uses the fact that: 
x d mod n = (x x r e f x f 1 mod n 
15 Thus, the calculation of y = x d mod n is broken down into four steps: 

• A random generator is used to obtain a value r ; 

• We calculate : u = x x r e mod n ; 

• We calculate : v = u d mod n ; 

• We calculate : y = v x f 1 mod n. 

20 The disadvantage of this method is that it makes it necessary, for each 

calculation, to calculate the modular inverse f 1 of the random value r, this operation 
generally being time-consuming (the duration of such a calculation is on the same 
order as that of a modular exponentiation such as u d mod n). Consequently, this new 
implementation (protected against DPA attacks) of the calculation of x d mod n takes 

25 about twice as long as the initial implementation (not protected against DPA attacks). 
In other words, this protection of RSA against DPA attacks increases the calculation 
time by approximately 100% (assuming that the public exponent e is very small, for 
example e=3; if the exponent e is larger, this calculation time is even longer). 

30 A second method; the method of the present invention 

According to the invention, a method for protecting an electronic system 
implementing a cryptographic calculation process involving a modular exponentiation 
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of a quantity (x), said modular exponentiation using a secret exponent (d), is 
characterized in that said Secret exponent is broken down into a plurality of k 
unpredictable values (dj, d 2 , d^), the sum of which is equal to said secret exponent. 

Advantageously, said values (dj, d 2 , d k ), are obtained in the following way: 
5 a) (k-1) values are obtained by means of a random generator; 

b) the final value is obtained from the difference between the secret exponent 
and the (k-1) values. 

Advantageously, the calculation of the modular exponentiation is performed in 
the following way: 

10 a) for each of said k values, the quantity (x) is raised by an exponent 

comprising said value in order to obtain a result, a set of results thus being obtained; 
b) a product of the results obtained in step a) is calculated. 
Advantageously, at least one of said (k-1) values obtained by means of a 
random generator has a length greater than or equal to 64 bits. 
15 Some of the details and advantages of the present invention will emerge from 

the following description of some preferred but non-limiting embodiments, in 
reference to the sole attached figure, which represents a smart card. 

According to the invention, we use the fact that: 
if d = dj + d 2 , then x d mod n = x dl xx dl mod n 
20 Thus, the calculation of y = x d mod n is broken down into five steps: 

• A random generator is used to obtain a value d } ; 

• We calculate : d 2 = d-dj ; 

• We calculate : u = x d ' mod n ; 

• We calculate : v = x d2 mod n ; 
25 • We calculate : y = u x v mod n. 

The advantage is that, this way, there is no modular inverse to calculate. In 
general, the calculation time of a modular exponentiation is proportional to the size of 
the exponent. Thus, if we let • be the ratio between the size of dj and the size of d 2 , it 
is clear that the total calculation time in this new implementation (protected against 
30 DPA attacks) is about (!+• ) times the calculation time in the initial implementation 
(not protected against DPA attacks). 

Note that, in order to obtain an unpredictable value d } , it necessary for its size 
to be at least 64 bits. 



The method thus described renders attacks of the DPA or HO-DPA type 
described above ineffective. In essence, in deciding whether or not two inputs 
(respectively two outputs) of the algorithm give the same value for an intermediate 
variable appearing during the calculation, it is no longer enough to know the key bits 
5 involved. It is also necessary to know the breakdown of the secret key d into k values 
dj,d2, ...,dk such that d-d]+d2+ ... +dk. Assuming that this breakdown is secret, and 
that at least one of the k values has a size of at least 64 bits, the hacker cannot predict 
the values of dj, d k , and therefore the fundamental hypothesis that would make it 
possible to implement a DPA or HO-DPA type attack, is no longer verified. 

10 

Examples : 

1 . If n has a length of 5 1 2 bits, by choosing to take a random value dj of 
64 bits, we obtain • =1/8, which means that this protection of RS A against DPA 

15 attacks increases the calculation time by about 12.5%. 

2. If n has a length of 1024 bits, by choosing to take a random value dj of 
64 bits, we obtain • =1/16, which means that this protection of RS A against DPA 
attacks increases the calculation time by about 6.25%. 

20 Second example: the Rabin algorithm 

We will now consider the asymmetrical cryptographic algorithm developed by 
Rabin in 1979. For a more detailed description of this algorithm, it may be useful to 
refer to the following document: 
25 • M. O. Rabin, Digitized Signatures and Public-Key Functions as Intractable as 
Factorization, Technical Report LCS/TR-212, M.I.T. Laboratory for Computer 
Science, 1979. 

The Rabin algorithm uses a whole number n that is the product of two large prime 
numbers p and q, which also verify the following two conditions: 
30 • p is congruent with 3 modulo 8 ; 
• q is congruent with 7 modulo 8. 

The public key calculation uses the function g of Z/nZ in Z/nZ defined by 
g(x)=x 2 mod n. The secret key calculation uses the function g' I (y)=y d mod n, where d 
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is the secret exponent (also called the secret or private key) defined by d=((p-l)(q- 
l)/4+l)/2. 

The function implemented by the secret key calculation being exactly the 
same as that used by the RSA algorithm, the same DPA or HO-DPA attacks are 
5 applicable and can pose the same threats to the Rabin algorithm. 

Protecting the algorithm 

Since the function is exactly the same as the one in RSA, the protection 
10 method described in the RSA context is applied in the same way in the case of the 
Rabin algorithm. The increase in the calculation time caused by the application of this 
method is also the same as in the case of the RSA algorithm. 



15 

The invention can be implemented in any electronic system performing a 
cryptographic calculation involving a modular exponentiation, including a smart card 
8 as in the sole figure. The chip includes information processing means 9, connected 
on one end to a nonvolatile memory 10 and a volatile working memory RAM 11, and 

20 connected on another end to means 12 for cooperating with an information processing 
device. The nonvolatile memory 10 can comprise a non-modifiable ROM part and a 
modifiable part constituted by an EPROM, an EEPROM or a RAM of the "flash" 
type, or FRAM, (the latter being a ferromagnetic RAM)), i.e., having the 
characteristics of an EEPROM but with access times identical to those of a standard 

25 RAM. 

For the chip, it is possible to use, in particular, a self-programmable 
microprocessor with a nonvolatile memory, as described in U.S. patent No. 4,382,279 
in the name of the Applicant. In a variant, the microprocessor of the chip is replaced, 
or at least supplemented, by logical circuits installed in a semiconductor chip. In 
30 essence, such circuits are capable of performing calculations, including authentication 
and signature calculations, as a result of hard- wired, rather than microprogrammed, 
electronics. In particular, they can be of the ASIC ("Application Specific Integrated 
Circuit") type. Advantageously, the chip is designed in monolithic form. 
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In the case of the utilization of such an electronic system, the invention 
consists in a metho'd for protecting an electronic system comprising information 
processing means and information storage means, the method implementing a 
cryptographic calculation process involving a modular exponentiation of a quantity 

5 (x) stored in the information storage means, said modular exponentiation using a 
secret exponent (d) stored in the storage means, characterized in that, by means of 
said information processing means, said secret exponent read in said information 
storage means is broken down into a plurality of k unpredictable values (d],d 2 , 
dk), the sum of which is equal to said secret exponent, said k unpredictable values 

10 being stored in the information storage means. 

Advantageously, said values (dj, d 2 , dk) are obtained in the following way: 

a) (k-1 ) values are obtained by means of a random generator and stored in the 
information storage means; 

b) the final value is obtained from the difference between the secret exponent 
15 and the (k-1 ) values, calculated by means of said information processing means. 

Advantageously, the calculation of the modular exponentiation is performed in 
the following way: 

a) for each of said k values, the quantity (x) is raised by an exponent 
comprising said value in order to obtain a result, a set of results thus being obtained; 
20 b) a product of the results obtained in step a) is calculated. 

Advantageously, at least one of said (k-1 ) values obtained by means of a 
random generator has a length greater than or equal to 64 bits. 



CLAIMS 



1 1. Method for protecting an electronic system implementing a cryptographic 

2 calculation process involving a modular exponentiation of a quantity (x), said modular 

3 exponentiation using a secret exponent (d), characterized in that said secret exponent is 

4 broken down in to a plurality of k unpredictable values {d 1 ,d 2 , . . <2*), the sum of which 

5 is equal to said secret exponent. 

1 2. Method according to claim 1 , characterized in that said values {d } , d 2 , 

2 dk), are obtained in the following way: 

3 a) (k-1) values are obtained by means of a random generator; 

4 b) the final value is obtained from the difference between the secret exponent 

5 and the (k-1) values. 

1 3. Method according to claim 1, characterized in that the calculation of the 

2 modular exponentiation is performed in the following way: 

3 a) for each of said k values, the quantity (x) is raised by an exponent 

4 comprising said value in order to obtain a result, a set of results thus being obtained; 

5 b) a product of the results obtained in step a) is calculated. 

1 4. Method according to claim 1, characterized in that at least one of said (k- 

2 1) values obtained by means of a random generator has a length greater than or equal to 

3 64 bits. 

1 5. Utilization of the method according to claim 1 in a smart card comprising 

2 information processing means. 

1 6. Utilization of the method according to claim 1 to protect a cryptographic 

2 calculation process using the RSA algorithm. 
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1 7. Utilization of the method according to claim 1 to protect a cryptographic 

2 calculation process using the Rabin algorithm. 
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ABSTRACT 



SECURITY METHOD FOR A CRYPTOGRAPHIC ELECTRONIC 
ASSEMBLY BASED ON MODULAR EXPONENTIATION AGAINST 
ANALYTICAL ATTACKS 

The invention concerns a method for protecting an electronic system 
implementing a cryptographic calculation process involving a modular exponentiation of 
a quantity (x), said modular exponentiation using a secret exponent (d), characterized in 
that said secret exponent is broken down into a plurality of k unpredictable values (dj, d 2 , 
dk), the sum of which is equal to said secret exponent. 
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